$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666563323a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a666563323a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: gqJZhWBkwqefKMwbJIv4jliqjoeTIXz3aJVwbp1p2Xs= Subject key identifier: 83:D5:00:34:6C:6F:BD:05:71:2D:2F:2F:26:49:D7:CD:8D:30:BD:13 Certificate issuer: /CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Certificate serial: 39597A814C8874507D5876F23B15E2904B41C23A Authority key identifier: 42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666563323a3a2f34382d3438203d3e20333936393638.roa Signing time: Thu 26 Jun 2025 12:55:58 +0000 ROA not before: Thu 26 Jun 2025 12:50:58 +0000 ROA not after: Thu 25 Jun 2026 12:55:58 +0000 asID: 396968 IP address blocks: 2a0f:6287:fec2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 10:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:59:7a:81:4c:88:74:50:7d:58:76:f2:3b:15:e2:90:4b:41:c2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Validity Not Before: Jun 26 12:50:58 2025 GMT Not After : Jun 25 12:55:58 2026 GMT Subject: CN=83D500346C6FBD05712D2F2F2649D7CD8D30BD13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ff:ca:4d:2e:58:49:21:16:64:31:78:2a:b8: 03:9c:83:07:12:3b:b8:15:e0:da:c5:12:e1:fb:e7: b3:83:3b:f0:e5:c8:1e:8b:97:10:4d:83:51:ca:ba: bd:8a:9f:8c:59:15:14:04:9d:ee:23:b1:b4:f6:ec: 76:f5:b8:ca:13:92:58:de:08:52:a8:ad:ce:0a:6f: 84:d5:44:f6:f1:99:10:a6:e3:0a:13:7a:a6:65:6d: d9:7d:c3:14:d8:d3:11:50:b7:11:ad:cf:4c:27:47: e6:f9:2f:fc:f0:63:e0:0b:95:79:a2:db:43:33:6e: a2:5d:9a:f1:fd:b2:23:85:2a:ad:a1:9c:2e:92:d9: 59:e0:74:75:61:a8:6f:d1:c3:e0:ee:99:14:9a:d4: 9b:98:46:13:57:a7:cd:cd:f4:f9:83:42:be:32:b2: a3:ed:5c:eb:db:68:51:93:cf:3f:ef:c1:d0:34:05: 96:87:19:31:9d:dc:00:17:25:de:f3:c8:28:57:ed: a4:aa:bd:36:3f:75:e1:6d:29:bf:ca:47:2e:47:2f: 30:67:18:1f:3b:13:17:a0:a9:97:71:aa:34:4a:96: 2d:5e:a6:50:16:92:73:d7:24:21:dd:a7:33:dd:5e: fe:36:ab:c4:bd:db:e6:a5:77:08:13:7f:b6:40:c8: f8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D5:00:34:6C:6F:BD:05:71:2D:2F:2F:26:49:D7:CD:8D:30:BD:13 X509v3 Authority Key Identifier: keyid:42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666563323a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:fec2::/48 Signature Algorithm: sha256WithRSAEncryption 6f:8a:a2:27:04:2d:43:fe:de:8c:71:c7:68:8d:39:8c:ac:d9: 2b:bb:f5:83:2b:1a:76:15:19:51:09:fd:68:c0:d5:25:5e:49: f6:26:a6:e1:80:63:79:b0:57:f0:a9:d5:39:4a:98:ad:87:7c: 14:92:37:36:a3:6c:11:e0:5d:28:c0:ad:48:b3:d5:ba:9a:92: 87:c6:b1:09:e0:d7:47:06:9c:63:5e:f8:53:33:7d:f2:22:36: 09:40:d5:72:45:0e:89:4d:bd:77:9e:62:3f:ae:36:da:d1:e9: 86:63:16:f9:43:0c:84:f1:02:69:29:ed:92:c4:30:b1:bb:d5: a0:50:ff:f8:22:4c:85:d6:3e:ef:9d:c0:1b:29:70:dc:70:52: 74:ad:d8:4a:19:ef:51:87:69:f6:65:60:fc:bc:96:bb:d2:d7: 51:89:cd:47:a6:03:db:b5:3b:4c:f5:6a:4a:73:7c:7c:4c:aa: bc:40:72:ce:56:dd:e1:9c:0c:3d:98:99:b4:13:2e:13:2c:48: 37:66:ce:5e:d8:b1:4a:fd:b4:e1:3f:f1:bf:04:b2:bc:22:4c: 02:c6:1d:e8:3d:c4:bd:01:01:a6:dd:bf:c5:eb:e8:78:10:96: 11:53:8e:21:46:a3:fd:0f:c4:0f:5e:bf:86:03:e2:17:02:7b: fc:be:e1:1d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUOVl6gUyIdFB9WHbyOxXikEtBwjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwMUM1NEY5MkU2NTUyRTQ3QUE1NzVBQ0VFRDJBRjBF RTI5QThFNzAeFw0yNTA2MjYxMjUwNThaFw0yNjA2MjUxMjU1NThaMDMxMTAvBgNV BAMTKDgzRDUwMDM0NkM2RkJEMDU3MTJEMkYyRjI2NDlEN0NEOEQzMEJEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4/8pNLlhJIRZkMXgquAOcgwcS O7gV4NrFEuH757ODO/DlyB6LlxBNg1HKur2Kn4xZFRQEne4jsbT27Hb1uMoTklje CFKorc4Kb4TVRPbxmRCm4woTeqZlbdl9wxTY0xFQtxGtz0wnR+b5L/zwY+ALlXmi 20MzbqJdmvH9siOFKq2hnC6S2VngdHVhqG/Rw+DumRSa1JuYRhNXp83N9PmDQr4y sqPtXOvbaFGTzz/vwdA0BZaHGTGd3AAXJd7zyChX7aSqvTY/deFtKb/KRy5HLzBn GB87ExegqZdxqjRKli1eplAWknPXJCHdpzPdXv42q8S92+aldwgTf7ZAyPhVAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUg9UANGxvvQVxLS8vJknXzY0wvRMwHwYDVR0j BBgwFoAUQgHFT5LmVS5Hqldazu0q8O4pqOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMi80MjAxQzU0Rjky RTY1NTJFNDdBQTU3NUFDRUVEMkFGMEVFMjlBOEU3LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4 OTk1ZC8zLzQyMDFDNTRGOTJFNjU1MkU0N0FBNTc1QUNFRUQyQUYwRUUyOUE4RTcu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMi8zMjYxMzA2NjNhMzYzMjM4MzczYTY2NjU2MzMyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/7C MA0GCSqGSIb3DQEBCwUAA4IBAQBviqInBC1D/t6MccdojTmMrNkru/WDKxp2FRlR Cf1owNUlXkn2JqbhgGN5sFfwqdU5Spith3wUkjc2o2wR4F0owK1Is9W6mpKHxrEJ 4NdHBpxjXvhTM33yIjYJQNVyRQ6JTb13nmI/rjba0emGYxb5QwyE8QJpKe2SxDCx u9WgUP/4IkyF1j7vncAbKXDccFJ0rdhKGe9Rh2n2ZWD8vJa70tdRic1HpgPbtTtM 9WpKc3x8TKq8QHLOVt3hnAw9mJm0Ey4TLEg3Zs5e2LFK/bThP/G/BLK8IkwCxh3o PcS9AQGm3b/F6+h4EJYRU44hRqP9D8QPXr+GA+IXAnv8vuEd -----END CERTIFICATE-----Generated at Mon Jun 30 18:24:57 2025 by rpki-client